Andrew Martin

DevOps Lead @ UK Home Office

Andrew is a DevOps Lead at the UK Home Office with a strong test-first engineering background gained developing and deploying high volume web applications. Proficient in application development and Unix systems architecture and maintenance, he is comfortable profiling and securing every tier of a bare metal or virtualised web stack, and has battle-hardened experience delivering containerised solutions to enterprise clients.

talkLive Container Hacking: Capture The Flag - Andrew vs Ben

Every day hackers are searching for potential exploits and vulnerabilities within systems. The system administrator’s aim is to create protections and defenses to ensure that they don’t succeed. But what does that look like live? This talk will demonstrate live reconnaissance, exploitation, and defence of running containers and orchestrators. Ben has challenged Andrew to try and capture his flag, represented by a Bitcoin. If Andrew manages to exploit a Docker/Kubernetes deployment, then he’ll capture the flag and as such the Bitcoin. Ben needs to ensure that all the correct defenses are in place to stop this from happening. Be witness to attack and defend methods of Docker Security. Learn the approaches hackers use and how to defend your systems. More importantly, who will win? Will any systems still be up by the end? Will the containers successfully contain and protect from Andrew’s onslaught?

workshopSecuring Docker Containers and Deployments (Advanced)

Docker provides a number of container security extensions that can appear esoteric and confusing to a new user. During this hands-on workshop, Andrew and Ben will share their experiences of securing Docker and Kubernetes based deployments. This workshop will demonstrate why containers are insecure and work with vulnerable containers to secure them against various forms of attack and privilege escalation. Attendees will work through: - Hardening Containers - Container intrusion detection - Docker and Linux vulnerabilities - Out-of-the-box security with Docker - Securing containers with Seccomp and AppArmor - Securing containers using Linux Kernel features - CI continuous security measures to lock down containers at all stages of their lifecycle. - A comprehensive summary of container native security tooling and a comparison with existing tools. Attendees will leave the session understanding Linux and Docker's security model, the limitations and how to maximise your container’s security.